:: Deepquest :: This site contains information which could be considered illegal in some countries. It is provided here for educational use only and is not intended to be used for illegal activities.

Month: December 2017

exploit

BrightSign Digital Signage XSS / Traversal / File Upload

BrightSign Digital Signage suffers from cross...

deepcoreDec 20, 2017

exploit

Joomla! NextGen Editor 2.1.0 SQL Injection

Joomla! NextGen Editor component version 2.1.0...

deepcoreDec 20, 2017

Security

[webapps] Conarc iChannel – Improper Access Restrictions

Conarc iChannel – Improper Access Restrictions

deepcoreDec 20, 2017

Security

[webapps] BEIMS ContractorWeb 5.18.0.0 – SQL Injection

BEIMS ContractorWeb 5.18.0.0 – SQL Injection

deepcoreDec 20, 2017

Security

[webapps] Ability Mail Server 3.3.2 – Cross-Site Scripting

Ability Mail Server 3.3.2 – Cross-Site...

deepcoreDec 20, 2017

Security

[remote] Samsung Internet Browser – SOP Bypass (Metasploit)

Samsung Internet Browser – SOP Bypass...

deepcoreDec 20, 2017

defacement

http://nakhonsawanpolicestation.go.th/images/d.gif

http://nakhonsawanpolicestation.go.th/images/d.gif notified by darkshadow-tn

deepcoreDec 19, 2017

Security

[shellcode] Linux/x64 – Custom Encoded XOR + Polymorphic + execve(/bin/sh) Shellcode (Generator)

Linux/x64 – Custom Encoded XOR +...

deepcoreDec 19, 2017

Security

[remote] Jenkins – XStream Groovy classpath Deserialization (Metasploit)

Jenkins – XStream Groovy classpath Deserialization...

deepcoreDec 19, 2017

Security

[dos] Microsoft Windows – 'jscript!NameTbl::GetValDef' Use-After-Free

Microsoft Windows – ‘jscript!NameTbl::GetValDef’ Use-After-Free

deepcoreDec 19, 2017